Vendors:

Vulnerable Software/Devices:

Vulnerability Severity:

High

Exploit Availability:

Publicly Available

Exploit Impact:

Remote Code Execution, Security BypassRemote Code Execution (CVE-2013-4980 and CVE-2013-4981)Exploitation of this vulnerability is possible by forming a malicious request and sending it to the affected server. Remote attackers who successfully exploit this vulnerability will be able to execute arbitrary commands on the vulnerable system with the same rights as the web service.

Security Bypass (CVE-2013-4982)This vulnerability allows an attacker to bypass the CAPTCHA protection mechanism, allowing the attacker to automate attacks that would normally be blocked by the CAPTCHA.